| Time |
S |
Nick |
Message |
| 00:55 |
|
|
riddle joined #rest |
| 03:01 |
|
|
ironChicken joined #rest |
| 03:56 |
|
|
[[thufir]] joined #rest |
| 04:40 |
|
|
[[thufir]] joined #rest |
| 06:32 |
|
|
wsieroci joined #rest |
| 06:50 |
|
|
Guest28278 joined #rest |
| 07:30 |
|
|
interop_madness joined #rest |
| 08:46 |
|
|
Haudegen joined #rest |
| 09:30 |
|
|
graste joined #rest |
| 11:46 |
|
|
Haudegen joined #rest |
| 12:26 |
|
|
shoobie joined #rest |
| 13:07 |
|
|
tbsf joined #rest |
| 13:15 |
|
|
tbsf joined #rest |
| 13:16 |
|
|
tbsf joined #rest |
| 13:17 |
|
|
tbsf joined #rest |
| 13:19 |
|
|
tbsf joined #rest |
| 13:33 |
|
|
tbsf joined #rest |
| 13:42 |
|
|
Haudegen joined #rest |
| 13:48 |
|
saml |
https://tools.ietf.org/html/rfc6648 |
| 13:48 |
|
saml |
should i not use X-? |
| 13:51 |
|
trygvis |
you probably shouldn't invent your own headers in the first place :) |
| 13:52 |
|
mdk |
saml: to avoid inventing your own headers, we may help you finding the right one, but you'll have to specify "on behalf of", can the Forwarded header https://tools.ietf.org/html/rfc7239 help you ? |
| 13:53 |
|
saml |
trygvis, I want to provide two Authorizations one for the client. one for on behalf of. |
| 13:53 |
|
saml |
mdk, oh let me take a look at it. thanks |
| 13:54 |
|
mdk |
saml: tell me if it fits, yw |
| 13:54 |
|
saml |
X-Forwarded-For is ip, not auth tokens |
| 13:55 |
|
saml |
oh, there's Forwarded: for=<identifier> |
| 13:56 |
|
mdk |
identifier looks for origin (~ip addr or unique token to identify some source) not authorization though |
| 13:57 |
|
pdurbin |
SWORD uses "On-Behalf-Of": http://swordapp.github.io/SWORDv2-Profile/SWORDProfile.html |
| 13:58 |
|
saml |
first time hearing about SWORD |
| 14:06 |
|
saml |
https://docs.box.com/reference#as-user-1 looks like box api used to use On-Behalf-Of but changed to As-User |
| 14:08 |
|
mdk |
as-user is clear and readable, I like it |
| 14:13 |
|
saml |
in my cases, I'm passing authentication token, not username/email |
| 14:20 |
|
mdk |
why not a username ? |
| 14:31 |
|
|
hat joined #rest |
| 15:10 |
|
|
tbsf joined #rest |
| 16:03 |
|
|
tbsf joined #rest |
| 16:22 |
|
saml |
mdk, might be compliance issue. even if my app is authenticated, it cannot make request as any other identity. it can only make request as identity that's already authed from other app |
| 16:23 |
|
trygvis |
it sounds to me like you're reinventing oauth (2) |
| 16:26 |
|
|
[[thufir]] joined #rest |
| 16:29 |
|
saml |
yeah my app isn't http. it reads messages from rabbitmq and needs to make an http request on behalf of someone specified in the message |
| 16:45 |
|
trygvis |
oauth is not bound to http |
| 16:55 |
|
|
Haudegen joined #rest |
| 17:40 |
|
|
ResidentBiscuit joined #rest |
| 19:43 |
|
|
wsieroci joined #rest |
